* Proxy Chaining
@ 2003-09-19 15:36 Javier Govea
2003-09-24 12:38 ` Michael Klinteberg
0 siblings, 1 reply; 3+ messages in thread
From: Javier Govea @ 2003-09-19 15:36 UTC (permalink / raw
To: netfilter
Hi to all,
I want to setup a chain of proxies and I was wondering if this could be done with
iptables. Any advice is very welcome. Here is more in detail what I want:
Host A needs to forward all traffic (http, ftp, icmp, ...) to Host B, which in turns
forwards all traffic to Host C, which in turns forawards everything to its default
gateway. The hosts do not belong to a LAN only A and B are in the same LAN.
Is it possible to setup this kind of proxy chaining with iptables?? if so, any
suggestions on how to do it?? if iptables is not the right tool to solve this problem,
any suggestions on what can i use???
thanx to all in advance..
Xavier
^ permalink raw reply [flat|nested] 3+ messages in thread
* RE: Proxy Chaining
@ 2003-09-20 2:17 George Vieira
0 siblings, 0 replies; 3+ messages in thread
From: George Vieira @ 2003-09-20 2:17 UTC (permalink / raw
To: Javier Govea, netfilter
Get SQUID to do that.. first machine can do a transparent proxy and let squid do the rest.
Thanks,
____________________________________________
George Vieira
Systems Manager
georgev@citadelcomputer.com.au
Citadel Computer Systems Pty Ltd
http://www.citadelcomputer.com.au
Phone : +61 2 9955 2644
HelpDesk: +61 2 9955 2698
-----Original Message-----
From: Javier Govea [mailto:jgovea@magma.ca]
Sent: Saturday, 20 September 2003 1:37 AM
To: netfilter@lists.netfilter.org
Subject: Proxy Chaining
Hi to all,
I want to setup a chain of proxies and I was wondering if this could be done with
iptables. Any advice is very welcome. Here is more in detail what I want:
Host A needs to forward all traffic (http, ftp, icmp, ...) to Host B, which in turns
forwards all traffic to Host C, which in turns forawards everything to its default
gateway. The hosts do not belong to a LAN only A and B are in the same LAN.
Is it possible to setup this kind of proxy chaining with iptables?? if so, any
suggestions on how to do it?? if iptables is not the right tool to solve this problem,
any suggestions on what can i use???
thanx to all in advance..
Xavier
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Proxy Chaining
2003-09-19 15:36 Javier Govea
@ 2003-09-24 12:38 ` Michael Klinteberg
0 siblings, 0 replies; 3+ messages in thread
From: Michael Klinteberg @ 2003-09-24 12:38 UTC (permalink / raw
To: netfilter
----- Original Message -----
From: "Javier Govea" <jgovea@magma.ca>
To: <netfilter@lists.netfilter.org>
Sent: Friday, September 19, 2003 5:36 PM
Subject: Proxy Chaining
> Hi to all,
>
> I want to setup a chain of proxies and I was wondering if this could be
done with
> iptables. Any advice is very welcome. Here is more in detail what I
want:
>
> Host A needs to forward all traffic (http, ftp, icmp, ...) to Host B,
which in turns
> forwards all traffic to Host C, which in turns forawards everything to
its default
> gateway. The hosts do not belong to a LAN only A and B are in the same
LAN.
>
> Is it possible to setup this kind of proxy chaining with iptables?? if
so, any
> suggestions on how to do it?? if iptables is not the right tool to solve
this problem,
> any suggestions on what can i use???
>
> thanx to all in advance..
> Xavier
I have no idea if this works and if it doesn't please someone on this list
tell me why.
On Host A
iptables -t nat -A PREROUTING -j DNAT --to ip.to.host.B
On Host B
iptables -t nat -A PREROUTING -j DNAT --to ip.to.host.C
On Host C
iptables -t nat -A PREROUTING -j DNAT --to default.gateway.ip
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2003-09-24 12:38 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-09-20 2:17 Proxy Chaining George Vieira
-- strict thread matches above, loose matches on Subject: below --
2003-09-19 15:36 Javier Govea
2003-09-24 12:38 ` Michael Klinteberg
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.